[Git][security-tracker-team/security-tracker][master] CVE-2025-13086/openvpn: Reference introducing commit
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri Nov 21 07:31:07 GMT 2025
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
8e8cfd0e by Salvatore Bonaccorso at 2025-11-21T08:30:28+01:00
CVE-2025-13086/openvpn: Reference introducing commit
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -493,6 +493,7 @@ CVE-2025-13086 [HMAC verification check: fix incorrect memcmp() call]
[experimental] - openvpn 2.7.0~rc2-1
- openvpn 2.7.0~rc2-2 (bug #1121086)
NOTE: https://community.openvpn.net/Security%20Announcements/CVE-2025-13086
+ NOTE: Introduced with: https://github.com/OpenVPN/openvpn/commit/b364711486dc6371ad2659a5aa190941136f4f04 (v2.6_beta1)
NOTE: Fixed by: https://github.com/OpenVPN/openvpn/commit/18c483dd6031d86eb393527855734e8cd62fea19 (v2.7_rc2)
NOTE: Fixed by: https://github.com/OpenVPN/openvpn/commit/fa6a1824b0f37bff137204156a74ca28cf5b6f83 (v2.6.16)
CVE-2025-64438
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8e8cfd0e7d900aed7b8fb93bca5efcade0b0d010
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8e8cfd0e7d900aed7b8fb93bca5efcade0b0d010
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251121/45d4f460/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list